![icon outline.png]](https://support.nimblrsecurity.com/hs-fs/hubfs/icon%20outline.png?width=40&height=40&name=icon%20outline.png){kind=small}
Does whitelisting compromise our cybersecurity in any way?
Yes, you can whitelist Nimblr’s simulations without compromising your cybersecurity defenses using Microsoft advanced delivery policy for third-party phishing simulations.
Whitelisting is implemented using Microsoft’s Advanced Delivery policy, which is specifically designed for safe delivery of phishing simulations without weakening your overall email security posture.
This configuration does not bypass standard malware or spam filtering. It only ensures that Nimblr’s authorized simulation emails are not flagged as false positives by Defender for Office 365. The policy applies to specific sender domains and IP addresses verified by Nimblr and limited to simulation traffic only.
Microsoft has developed this mechanism precisely to allow controlled simulations without creating any security gaps in your environment. No other senders benefit from the policy, and it does not apply to real phishing emails.
Our simulated phishing login pages automatically interrupt password entry after the first two characters. No data is transmitted, stored, or processed in any form.
This configuration does not bypass standard malware or spam filtering. It only ensures that Nimblr’s authorized simulation emails are not flagged as false positives by Defender for Office 365. The policy applies to specific sender domains and IP addresses verified by Nimblr and limited to simulation traffic only.
Microsoft has developed this mechanism precisely to allow controlled simulations without creating any security gaps in your environment. No other senders benefit from the policy, and it does not apply to real phishing emails.
Our simulated phishing login pages automatically interrupt password entry after the first two characters. No data is transmitted, stored, or processed in any form.